Using SSO Login for Operator User

Discusses how to log in to VeloCloud Orchestrator using Single Sign On (SSO) as an Operator user.
  • Ensure you have configured the SSO authentication in VeloCloud Orchestrator. For additional information, see Configure Single Sign On for Operator User.
  • Ensure you have set up roles, users, and OIDC application for the SSO in your preferred IDPs. For additional information, see Authentication.
To login into VeloCloud Orchestrator using the SSO as an Operator user:
Note: If other authentication mechanisms fail, there must always be a native Operator Superuser as a system fallback.
  1. In a web browser, launch the Orchestrator application as an Operator user. The VeloCloud Orchestrator screen appears.
    Figure 1. VeloCloud Orchestrator Login Screen
  2. Select Sign In With Your Identity Provider.
    Figure 2. VeloCloud Orchestrator Sign In Screen
  3. In the Organization Domain text box, enter the domain name used for the SSO configuration and select Sign In. The IDP configured for the SSO authenticates the user and redirects the user to the configured VeloCloud Orchestrator URL.
    Figure 3. Customers and Partners Tab
    Note:
    • Once the users log in to the VeloCloud Orchestrator using the SSO, they are not allowed to login again as native users.
    • The user can navigate to the Classic UI by selecting the Open Classic Orchestrator option located at the top right of the UI screen.
  • Manage Customers and Partner
  • Manage Operators
  • Configure User Account details
  • Manage Gateway pools and Gateways
  • Manage Software and Firmware images
Additionally, in the VeloCloud Orchestrator home page, you can access the following features from the Global Navigation bar:
  • The user can select the Question Mark icon located at the top right of the screen to access the Help page. The Help page displays links to quick start guide, product documentation, and knowledge base. Users can also view additional information such as version number, build number, cookie usage, and VeloCloud trademark.
    Figure 4. Help Page
  • The user can select the User icon located at the top right of the screen to access the My Account page. The My Account page allows users to configure basic user information, SSH keys, and API tokens. Users can also view the current user's role and the associated privileges.
    Figure 5. User Information Page
  • The In-product Contextual Help Panel with context-sensitive user assistance is supported in the SD-WAN service of the Enterprise Orchestrator UI and as well as for the Operator and Partner levels. User can access the In-product Contextual Help Panel by selecting the Support expand and collapse button available on the right side of the screen.

    The panel allows users across all levels to access helpful and important information such as Question-Based Lists (QBLs), Knowledge base links, Ask the Community link, how to file a support ticket, and other related documentation from within the Orchestrator UI page itself. This makes it easier for the user to learn our product without having to navigate to another site for guidance or contact the Support Team.

    Figure 6. In-product Contextual Help Panel